VMWARE: Meltdown and Spectre

Due to the new CPU bug, memory can be read by criminals, therefore update your OS and virtuel environments:

Relevant Products

  • VMware vSphere ESXi (ESXi)
  • VMware Workstation Pro / Player (Workstation) excluded Workstation version 14
  • VMware Fusion Pro / Fusion (Fusion) excluded Fusion 10

Solution

  • VMware vSphere 6.5: apply patch¬†ESXi650-201712101-SG¬†(released on Dec, 19th 2017)
  • VMware vSphere 6.0: apply patch ESXi600-201711101-SG
  • VMware vSphere 5.5: apply patch ESXi550-201709101-SG (this patch has remediation against CVE-2017-5715 but not against CVE-2017-5753)
  • VMware Workstation 12.x: update to version 12.5.8
  • VMware Fusion 8: update to version 8.5.9

Esxi 5.0 and 5.1 is no more supported and cannot be patched = UPDATE to newer vSphere edtion asap!!!

Sources:

https://vinfrastructure.it/2018/01/meltdown-spectre-vmware-patches/

https://vinfrastructure.it/2018/01/meltdown-spectre-critical-vulnerabilities-several-processors/

Leave a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close